Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/03bb2e-4341-4435-ade7-8ceaf11e2728/1/5bN0KCMS3ezke6Dr6egzw9jT_RI.roa
File: 5bN0KCMS3ezke6Dr6egzw9jT_RI.roa (raw, json)
Hash identifier: xnenwE90FVm+bO0EgeoMKNani0wtwarQr6c+Vjfbj68=
Subject key identifier: E5:B3:74:28:23:12:DD:EC:E4:7B:A0:EB:E9:E8:33:C3:D8:D3:FD:12
Certificate issuer: /CN=d1981d330a9eba24f1b9f7c99ac6bfdd6139aad8
Certificate serial: 05AD1009
Authority key identifier: D1:98:1D:33:0A:9E:BA:24:F1:B9:F7:C9:9A:C6:BF:DD:61:39:AA:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ZgdMwqeuiTxuffJmsa_3WE5qtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/03bb2e-4341-4435-ade7-8ceaf11e2728/1/5bN0KCMS3ezke6Dr6egzw9jT_RI.roa
Signing time: Sat 01 Jan 2022 04:51:41 +0000
ROA not before: Sat 01 Jan 2022 04:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209054
IP address blocks: 5.183.161.0/24 maxlen: 24
5.183.163.0/24 maxlen: 24
5.183.160.0/24 maxlen: 24
5.183.162.0/24 maxlen: 24
2a0e:e00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95227913 (0x5ad1009)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1981d330a9eba24f1b9f7c99ac6bfdd6139aad8
Validity
Not Before: Jan 1 04:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5b374282312ddece47ba0ebe9e833c3d8d3fd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:20:17:cc:e0:49:80:ce:9d:92:8b:56:01:45:
1f:b4:80:24:ee:29:f4:49:85:97:4a:5b:1e:ae:97:
84:ab:2c:f9:a9:86:ff:f3:8b:02:f1:37:a0:85:3f:
8b:19:6a:17:7e:1e:1f:6b:cc:d5:ab:5f:1e:30:30:
00:63:25:93:a2:dc:09:bb:64:8e:2d:4c:50:2d:c5:
12:2d:50:ff:e8:37:cc:b8:e8:28:b5:7c:d7:bb:6d:
0f:c2:eb:f6:bc:49:bd:72:13:df:f5:aa:44:9a:e3:
b4:56:54:4f:20:ff:f1:a6:4f:a3:f8:c5:fa:d9:f9:
80:01:4c:45:d3:d6:33:6b:24:53:8f:95:dc:dc:d4:
69:03:3f:95:3e:ac:9c:d3:ff:a6:63:78:00:9e:90:
52:3f:87:dd:21:ed:8c:70:90:72:63:02:45:3d:b1:
2d:56:d5:00:67:76:61:32:50:9d:9e:58:f2:db:86:
c3:92:c9:ed:7b:3c:0d:69:97:69:c2:ec:00:5c:e4:
b0:46:3c:02:dc:60:da:ae:41:00:e6:9d:a2:93:69:
b4:d1:a3:f4:c6:9f:61:b0:18:0c:d7:3d:6b:91:08:
03:90:4c:14:dd:a2:ec:0d:45:0a:b1:52:77:e8:da:
d6:80:55:81:d0:6c:3a:0a:00:bc:00:53:14:fa:d2:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B3:74:28:23:12:DD:EC:E4:7B:A0:EB:E9:E8:33:C3:D8:D3:FD:12
X509v3 Authority Key Identifier:
keyid:D1:98:1D:33:0A:9E:BA:24:F1:B9:F7:C9:9A:C6:BF:DD:61:39:AA:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ZgdMwqeuiTxuffJmsa_3WE5qtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/03bb2e-4341-4435-ade7-8ceaf11e2728/1/5bN0KCMS3ezke6Dr6egzw9jT_RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/03bb2e-4341-4435-ade7-8ceaf11e2728/1/0ZgdMwqeuiTxuffJmsa_3WE5qtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.160.0/22
IPv6:
2a0e:e00::/32
Signature Algorithm: sha256WithRSAEncryption
6b:81:a0:13:49:4f:61:47:a1:a5:7d:7d:e3:a7:da:86:aa:7d:
9c:4c:13:74:75:5d:a7:47:f5:8a:ec:ee:58:2c:0d:46:45:58:
94:fd:86:68:14:6a:af:5f:08:8c:54:b1:3c:af:a5:fa:1d:0b:
e6:1d:05:3d:c0:6a:b3:24:3b:1a:6d:d4:8d:ec:bb:8b:61:f5:
1c:69:9b:fe:fe:ff:50:c3:67:a1:ce:ce:5c:71:ff:e5:aa:34:
3c:e0:48:ab:2d:4c:cc:bf:b1:32:83:e7:fd:a9:a1:6f:c4:fe:
58:5f:6a:63:54:2a:33:3b:47:58:36:35:c4:f0:a7:64:a1:ed:
f9:3a:47:97:18:d5:1b:80:0a:a5:60:b1:2a:1a:71:70:a1:8c:
9a:52:a4:50:c8:74:8b:30:ad:51:af:b7:6c:18:3a:c5:d1:9c:
40:a3:91:3e:18:d3:e9:4f:ae:5c:36:00:eb:be:07:5d:ff:95:
5a:0a:76:0b:0b:dd:fc:27:db:97:3e:0a:fe:e9:c4:b0:a7:05:
98:c8:7d:eb:a3:fd:bf:c8:08:90:56:82:2b:4e:3f:1d:49:64:
5a:e7:2a:f3:d8:8d:45:3c:d7:67:20:78:62:bc:1a:1a:aa:72:
70:f6:cc:55:33:35:12:21:d7:42:3d:23:fd:ba:67:ef:5d:ec:
0a:fd:60:18
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBa0QCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MTk4MWQzMzBhOWViYTI0ZjFiOWY3Yzk5YWM2YmZkZDYxMzlhYWQ4MB4XDTIyMDEw
MTA0NTE0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTViMzc0MjgyMzEy
ZGRlY2U0N2JhMGViZTllODMzYzNkOGQzZmQxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJggF8zgSYDOnZKLVgFFH7SAJO4p9EmFl0pbHq6XhKss+amG
//OLAvE3oIU/ixlqF34eH2vM1atfHjAwAGMlk6LcCbtkji1MUC3FEi1Q/+g3zLjo
KLV817ttD8Lr9rxJvXIT3/WqRJrjtFZUTyD/8aZPo/jF+tn5gAFMRdPWM2skU4+V
3NzUaQM/lT6snNP/pmN4AJ6QUj+H3SHtjHCQcmMCRT2xLVbVAGd2YTJQnZ5Y8tuG
w5LJ7Xs8DWmXacLsAFzksEY8Atxg2q5BAOadopNptNGj9MafYbAYDNc9a5EIA5BM
FN2i7A1FCrFSd+ja1oBVgdBsOgoAvABTFPrS1BECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTls3QoIxLd7OR7oOvp6DPD2NP9EjAfBgNVHSMEGDAWgBTRmB0zCp66JPG5
98maxr/dYTmq2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBaZ2RNd3FldWlUeHVmZkptc2FfM1dFNXF0Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvMDNiYjJlLTQzNDEtNDQzNS1hZGU3LThjZWFmMTFlMjcyOC8x
LzViTjBLQ01TM2V6a2U2RHI2ZWd6dzlqVF9SSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
MDNiYjJlLTQzNDEtNDQzNS1hZGU3LThjZWFmMTFlMjcyOC8xLzBaZ2RNd3FldWlU
eHVmZkptc2FfM1dFNXF0Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAgW3oDANBAIAAjAHAwUAKg4OADAN
BgkqhkiG9w0BAQsFAAOCAQEAa4GgE0lPYUehpX1946fahqp9nEwTdHVdp0f1iuzu
WCwNRkVYlP2GaBRqr18IjFSxPK+l+h0L5h0FPcBqsyQ7Gm3Ujey7i2H1HGmb/v7/
UMNnoc7OXHH/5ao0POBIqy1MzL+xMoPn/amhb8T+WF9qY1QqMztHWDY1xPCnZKHt
+TpHlxjVG4AKpWCxKhpxcKGMmlKkUMh0izCtUa+3bBg6xdGcQKORPhjT6U+uXDYA
674HXf+VWgp2Cwvd/Cfblz4K/unEsKcFmMh966P9v8gIkFaCK04/HUlkWucq89iN
RTzXZyB4YrwaGqpycPbMVTM1EiHXQj0j/bpn713sCv1gGA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org